Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:14 a.m.5 views

CVE-2022-23586

Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a SavedModel such that assertions in function.cc would be falsified and crash the Python interpreter. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this comm...

6.5CVSS6.6AI score0.008EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2022/02/09 11:27 p.m.3 views

rpnet (>=0.0.1 <=0.1.0), rpnet-dev (>=0.0.5 <=0.0.12) +4 more potentially affected by CVE-2022-23586 via tensorflow-gpu (=2.7.0)

tensorflow-gpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - rpnet =0.0.1, =0.0.5, =1.0.5, =1.1.1 - tpu-tf2 =1.0.0 - troj =1.0.0 Source cves: CVE-2022-23586 Source advisory:...

6.5CVSS6.5AI score0.008EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/09 11:27 p.m.4 views

lsmmdma (>=0.0.4 <=0.1.7), tpu-tf2 (=1.0.0) potentially affected by CVE-2022-23586 via tensorflow-cpu (=2.7.0)

tensorflow-cpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - lsmmdma =0.0.4, =0.1.7 - tpu-tf2 =1.0.0 Source cves: CVE-2022-23586 Source advisory: OSV:GHSA-43JF-985Q-588J...

6.5CVSS6.5AI score0.008EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/09 11:27 p.m.5 views

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23586 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23586 Source advisory: OSV:GHSA-43JF-985Q-588J...

6.5CVSS6.5AI score0.008EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/09 11:27 p.m.3 views

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +38 more potentially affected by CVE-2022-23586 via tensorflow (>=2.7.0 <=2.7.0rc1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-23586 Source advisory: OSV:GHSA-43JF-985Q-588J...

6.5CVSS6.5AI score0.008EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/09 11:27 p.m.3 views

alwakeupword (=1.0.0), armadillin (>=0.0.2 <=0.53.0) +42 more potentially affected by CVE-2022-23586 via tensorflow (>=2.6.0 <=2.6.2)

tensorflow PYPI version =2.6.0, =0.0.2, =1.0.1, =0.0.9, =0.2.0, =4.4.0, =1.1.2, =0.2.0, =0.0.1, =1.0.0, =1.1.2 - imgtovar =0.8.5 and more Source cves: CVE-2022-23586 Source advisory: OSV:GHSA-43JF-985Q-588J...

6.5CVSS6.5AI score0.008EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/04 11:15 p.m.4 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +171 more potentially affected by CVE-2022-23586 via tensorflow-gpu (>=1.10.1 <=2.5.1)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 - cctv-analysis =0.0.2 and more Source cves: CVE-2022-23586 Source advisory: OSV:PYSEC-2022-150...

6.5CVSS6.5AI score0.008EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/04 11:15 p.m.6 views

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23586 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23586 Source advisory: OSV:PYSEC-2022-150...

6.5CVSS6.5AI score0.008EPSS
Exploits1
CVE
CVE
added 2022/02/04 10:32 p.m.119 views

CVE-2022-23586

TensorFlow vulnerability CVE-2022-23586 affects the SavedModel path via assertions in function.cc, enabling denial of service by a malicious SavedModel that crashes the Python interpreter. Root cause is CHECK/assertion failures in function.cc when a SavedModel is altered. Affected releases map to...

6.5CVSS6.4AI score0.008EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2022/02/04 10:32 p.m.5 views

CVE-2022-23586 Multiple `CHECK`-fails in `function.cc` in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a SavedModel such that assertions in function.cc would be falsified and crash the Python interpreter. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this comm...

6.5CVSS6.4AI score0.008EPSS
Exploits1References4
Rows per page
Query Builder